[Openswan Users] Breaking L2TP connection

Jacco de Leeuw jacco2 at dds.nl
Tue Aug 16 19:08:07 CEST 2005


Matthias Haas wrote:

> I am trying to establish an reliable l2tp connection. The problem I have
> is that the connection breaks sometimes while doing the rekeying.
> The system I am currently using is
> openswan 2.2.1

You will have to upgrade if this is not a typo.

> I am doing cert based authentication. The client is natted. IKE Lifetme
> and IPSec Lifetime are set to 1h.

You could try fiddling with the lifetimes. What if you use the default
values? There will also be some NAT related fixes in the upcoming
Openswan 2.4.0.

> "l2tp_0-L2TP_0__gw-gw_213.179.141.11-0.0.0.0"[4] 213.179.141.14:4500 #15:
> next payload type of ISAKMP Hash Payload has an unknown value: 170
> Aug 16 16:05:23 do242 pluto[30180]:

Could be an MTU problem.

> Is there something wrong configured?

Well, you could post your ipsec.conf.

Jacco
-- 
Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl


More information about the Users mailing list